On 04/17/2015 11:20 PM, Eero Volotinen wrote:
Yep, maybe using ssl offloading devices like (BigIP) that receives tls1.2
and tlsv1.2 and then re-encrypts traffic with tls1.0 might be cheapest
solution.
Perhaps re-evaluate the need to have TLS 1.1 and 1.2 right now. The
only attack against 1.0
The cheapest sollution is probably compiling a private openssl somewhere
on the system and then compiling apache using that private openssl
version instead of the default system-wide one.
Regards,
Dennis
On 17.04.2015 13:20, Eero Volotinen wrote:
Yep, maybe using ssl offloading devices like
On 04/16/2015 05:00 PM, Eero Volotinen wrote:
in fact: modgnutls provides easy way to get tlsv1.2 to rhel 5
--
Eero
If you do that, then you are at the mercy of Mr. Bergmann to provide
updates for all security issues for openssl. Has he updated his RPMs
since 2014-11-19 23:57:58? Does his
Yep, maybe using ssl offloading devices like (BigIP) that receives tls1.2
and tlsv1.2 and then re-encrypts traffic with tls1.0 might be cheapest
solution.
--
Eero
2015-04-17 14:15 GMT+03:00 Johnny Hughes joh...@centos.org:
On 04/16/2015 05:00 PM, Eero Volotinen wrote:
in fact: modgnutls
2015-04-17 14:26 GMT+03:00 Dennis Jacobfeuerborn denni...@conversis.de:
The cheapest sollution is probably compiling a private openssl somewhere
on the system and then compiling apache using that private openssl
version instead of the default system-wide one.===
Well, not
2015-04-17 14:40 GMT+03:00 Peter pe...@pajamian.dhs.org:
On 04/17/2015 11:20 PM, Eero Volotinen wrote:
Yep, maybe using ssl offloading devices like (BigIP) that receives tls1.2
and tlsv1.2 and then re-encrypts traffic with tls1.0 might be cheapest
solution.
Perhaps re-evaluate the need
Hi,
Is there any nice way to get tlsv1.2 support to centos 5?
upgrading os to 6 is not option available.
--
Eero
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
How about using gnutls?
Eero
16.4.2015 12.46 ip. Leon Fauster leonfaus...@googlemail.com kirjoitti:
Am 16.04.2015 um 11:43 schrieb Eero Volotinen eero.voloti...@iki.fi:
Is there any nice way to get tlsv1.2 support to centos 5?
upgrading os to 6 is not option available.
Unfortunately not.
Am 16.04.2015 um 11:43 schrieb Eero Volotinen eero.voloti...@iki.fi:
Is there any nice way to get tlsv1.2 support to centos 5?
upgrading os to 6 is not option available.
Unfortunately not.
--
LF
___
CentOS mailing list
CentOS@centos.org
On 04/16/2015 04:49 AM, Eero Volotinen wrote:
How about using gnutls?
Not in the version included with EL5 as I recall.
You might want to give some serious thought to an upgrade plan. El5 goes
EOL in 2017, so you've got a little over a year. Additionally, EL5 is
already missing security
Am 16.04.2015 um 11:46 schrieb Leon Fauster leonfaus...@googlemail.com:
Am 16.04.2015 um 11:43 schrieb Eero Volotinen eero.voloti...@iki.fi:
Is there any nice way to get tlsv1.2 support to centos 5?
upgrading os to 6 is not option available.
Unfortunately not.
well. this hack solution might work:
http://www.tuxad.de/blog/archives/2014/11/19/openssl_updatesenhancements_for_rhel__centos_5/index.html
--
Eero
2015-04-16 17:30 GMT+03:00 Leon Fauster leonfaus...@googlemail.com:
Am 16.04.2015 um 11:46 schrieb Leon Fauster leonfaus...@googlemail.com:
Am
in fact: modgnutls provides easy way to get tlsv1.2 to rhel 5
--
Eero
2015-04-16 21:02 GMT+03:00 Eero Volotinen eero.voloti...@iki.fi:
well. this hack solution might work:
http://www.tuxad.de/blog/archives/2014/11/19/openssl_updatesenhancements_for_rhel__centos_5/index.html
--
Eero
13 matches
Mail list logo